| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-53306 | WordPress WP Forum Server plugin <= 1.8.2 - SQL Injection Vulnerability | lucidcrew | WP Forum Server | High | 7.6 | 2025-06-27 13:21:32 | Deep Dive |
| CVE-2025-53305 | WordPress WP Forum Server plugin <= 1.8.2 - Cross Site Request Forgery (CSRF) Vulnerability | lucidcrew | WP Forum Server | High | 7.1 | 2025-06-27 13:21:31 | Deep Dive |
| CVE-2025-39514 | WordPress Asgaros Forum plugin <= 3.2.1 - Cross Site Scripting (XSS) vulnerability | Asgaros | Asgaros Forum | Medium | 6.5 | 2025-04-16 12:45:53 | Deep Dive |
| CVE-2025-32227 | WordPress Asgaros Forum plugin <= 3.0.0 - File Upload Numbers Bypass vulnerability | Asgaros | Asgaros Forum | - | - | 2025-04-10 08:09:46 | Deep Dive |
| CVE-2025-31420 | WordPress wpForo Forum plugin <= 2.4.2 - Privilege Escalation vulnerability | Tomdever | wpForo Forum | - | - | 2025-04-04 13:00:14 | Deep Dive |
| CVE-2024-13518 | Simple:Press <= 6.10.12 - Cross-Site Request Forgery to Unauthorized Post Editing | simplepress | Simple:Press Forum | Medium | 4.3 | 2025-03-01 04:21:49 | Deep Dive |
| CVE-2025-0764 | wpForo Forum <= 2.4.1 - Authenticated (Subscriber+) Arbitrary File Read in update | tomdever | wpForo Forum | Medium | 6.5 | 2025-02-28 07:03:46 | Deep Dive |
| CVE-2024-10483 | SimplePress Forum < 6.10.11 - Reflected XSS | Unknown | Simple:Press Forum | 高危 | - | 2025-02-26 06:00:06 | Deep Dive |
| CVE-2024-12409 | Simple:Press Forum <= 6.10.11 - Reflected Cross-Site Scripting | simplepress | Simple:Press Forum | Medium | 6.1 | 2025-01-30 11:10:20 | Deep Dive |
| CVE-2024-12788 | Codezips Technical Discussion Forum signinpost.php sql injection | Codezips | Technical Discussion Forum | High | 7.3 | 2024-12-19 16:31:05 | Deep Dive |
| CVE-2024-12484 | Codezips Technical Discussion Forum signuppost.php sql injection | Codezips | Technical Discussion Forum | High | 7.3 | 2024-12-11 20:00:17 | Deep Dive |
| CVE-2023-47869 | WordPress wpForo plugin <= 2.2.5 - Broken Access Control + CSRF vulnerability | Tomdever | wpForo Forum | Medium | 4.3 | 2024-12-09 11:30:34 | Deep Dive |
| CVE-2024-11204 | ForumWP – Forum & Discussion Board <= 2.1.2 - Reflected Cross-Site Scripting via url Parameter | ultimatemember | ForumWP – Forum & Discussion Board | Medium | 6.1 | 2024-12-06 08:24:58 | Deep Dive |
| CVE-2024-10879 | ForumWP – Forum & Discussion Board <= 2.1.2 - Reflected Cross-Site Scripting | ultimatemember | ForumWP – Forum & Discussion Board | Medium | 6.1 | 2024-12-06 08:24:50 | Deep Dive |
| CVE-2024-9032 | SourceCodester Simple Forum-Discussion System index.php path traversal | SourceCodester | Simple Forum-Discussion System | Medium | 6.3 | 2024-09-20 13:00:13 | Deep Dive |
| CVE-2024-8428 | ForumWP – Forum & Discussion Board Plugin <= 2.0.2 - Insecure Direct Object Reference to Authenticated (Subscriber+) Privilege Escalation via Account Takeover | ultimatemember | ForumWP – Forum & Discussion Board | High | 8.8 | 2024-09-06 13:55:19 | Deep Dive |
| CVE-2024-43289 | WordPress wpForo Forum plugin <= 2.3.4 - Unauthenticated Sensitive Data Exposure vulnerability | gVectors Team | wpForo Forum | High | 7.5 | 2024-08-26 16:06:02 | Deep Dive |
| CVE-2024-7929 | SourceCodester Simple Forum Website Signup Page registration.php cross site scripting | SourceCodester | Simple Forum Website | Medium | 5.3 | 2024-08-19 21:31:08 | Deep Dive |
| CVE-2024-43288 | WordPress wpForo Forum plugin <= 2.3.4 - Insecure Direct Object References (IDOR) vulnerability | gVectors Team | wpForo Forum | Medium | 4.3 | 2024-08-18 21:33:37 | Deep Dive |
| CVE-2022-38055 | WordPress wpForo Forum plugin <= 2.0.9 - Auth. HTML Injection vulnerability | gVectors Team | wpForo Forum | Medium | 4.3 | 2024-06-21 15:52:08 | Deep Dive |